This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91166FC/AB1F4ECA729A11EAABBF9141C4F9AE02/aUCPaxygKBZoPM5MCOAEkyUZRLI.mft File: aUCPaxygKBZoPM5MCOAEkyUZRLI.mft (raw, json) Hash identifier: zUVzDXichNn1slENFfHFsAEcJTvIWm0HCfKJIoqufO8= Subject key identifier: D8:BC:14:CB:0E:E9:7F:CA:C8:95:00:9E:3A:98:73:A3:74:17:A4:2C Authority key identifier: 69:40:8F:6B:1C:A0:28:16:68:3C:CE:4C:08:E0:04:93:25:19:44:B2 Certificate issuer: /CN=A91166FC/serialNumber=69408F6B1CA02816683CCE4C08E00493251944B2 Certificate serial: 0AA4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aUCPaxygKBZoPM5MCOAEkyUZRLI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91166FC/AB1F4ECA729A11EAABBF9141C4F9AE02/aUCPaxygKBZoPM5MCOAEkyUZRLI.mft Manifest number: 0A8E Signing time: Thu 04 Dec 2025 18:54:12 +0000 Manifest this update: Thu 04 Dec 2025 18:54:11 +0000 Manifest next update: Thu 11 Dec 2025 18:54:11 +0000 Files and hashes: 1: aUCPaxygKBZoPM5MCOAEkyUZRLI.crl (hash: Z1/YfMeZnleNmWXX9G9FknKYOOhBIvGq1AweO4zDwXU=) 2: 834C938A12C711F09998A234C4F9AE02.roa (hash: M4mfahqMzwmq58j++0Teybq9n4Aqspe3mvfksixkbgE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91166FC/AB1F4ECA729A11EAABBF9141C4F9AE02/aUCPaxygKBZoPM5MCOAEkyUZRLI.crl rsync://rpki.apnic.net/member_repository/A91166FC/AB1F4ECA729A11EAABBF9141C4F9AE02/aUCPaxygKBZoPM5MCOAEkyUZRLI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aUCPaxygKBZoPM5MCOAEkyUZRLI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 18:54:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2724 (0xaa4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91166FC, serialNumber=69408F6B1CA02816683CCE4C08E00493251944B2 Validity Not Before: Dec 4 18:54:11 2025 GMT Not After : Dec 11 18:54:11 2025 GMT Subject: CN=6931d8d3-7d80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:bc:76:92:86:78:04:6c:37:4e:44:a1:57:6a: a4:24:3d:c5:73:47:75:b1:3e:58:0f:2e:a2:e1:60: 39:20:4f:b7:ae:17:c0:d7:42:a2:06:60:7b:7f:ad: 67:e7:8d:c3:88:35:74:84:0a:27:9f:b3:46:0d:1b: 1d:37:09:cc:9f:b6:6e:b5:e8:fa:44:a9:25:9b:05: 77:f6:5f:b1:0b:e8:d7:18:c8:df:a7:50:21:24:e9: 09:25:f6:9c:7d:dd:0f:98:45:16:da:1f:2d:c5:c7: 14:ec:05:86:28:31:c9:36:63:00:70:05:4b:fb:35: fd:e9:85:50:25:5b:e0:63:9b:73:75:0e:a0:16:df: 7e:8c:17:87:ff:12:0a:e2:91:a3:e5:c7:13:14:57: ce:e3:74:1b:19:03:b3:28:7a:d3:f8:5a:a2:f8:6f: 7f:8f:11:a7:e9:df:83:77:8d:36:13:a0:e2:4c:50: 63:39:92:21:ee:e0:77:bf:ac:96:8d:53:ff:61:66: c8:f0:ab:64:aa:db:84:e6:c8:82:5c:49:fb:5b:5c: e9:0b:d8:16:91:07:35:f3:8b:ee:1e:b7:09:a6:22: c3:f3:22:96:fb:dd:4a:0e:39:6c:bf:b6:7c:7f:24: 19:24:77:b1:d4:72:60:2d:36:f9:ca:f7:47:98:60: d9:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:BC:14:CB:0E:E9:7F:CA:C8:95:00:9E:3A:98:73:A3:74:17:A4:2C X509v3 Authority Key Identifier: keyid:69:40:8F:6B:1C:A0:28:16:68:3C:CE:4C:08:E0:04:93:25:19:44:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91166FC/AB1F4ECA729A11EAABBF9141C4F9AE02/aUCPaxygKBZoPM5MCOAEkyUZRLI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aUCPaxygKBZoPM5MCOAEkyUZRLI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91166FC/AB1F4ECA729A11EAABBF9141C4F9AE02/aUCPaxygKBZoPM5MCOAEkyUZRLI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:36:fc:e0:03:d7:35:c6:49:91:c6:58:39:e8:4d:92:c1:af: c4:89:e3:85:99:a2:1f:23:1d:7e:34:f9:5d:5c:5a:dc:89:a0: 6c:8c:e6:fc:a8:ba:96:e8:9c:09:68:73:1f:07:4e:0e:4b:60: 70:57:e6:07:3b:d4:78:d6:a5:ef:bb:49:70:25:cb:83:b0:17: 36:63:90:fc:29:c2:e0:05:61:aa:0f:cf:93:89:81:a2:1c:fc: f3:ec:f7:2a:4e:84:99:1f:49:af:fd:b7:75:98:a8:df:d6:b4: e2:fd:82:bf:36:42:18:76:48:e1:eb:fd:0d:f7:de:64:2b:fd: dc:31:3a:34:60:fc:bb:89:f9:c0:1b:29:11:1c:d9:b5:a8:fb: f0:6d:01:20:c8:98:ba:b7:a1:70:92:55:26:38:e7:31:8e:96: 92:07:82:09:15:2e:ac:80:9d:5d:aa:9d:4d:3c:87:3e:be:a4: a4:48:46:8a:d0:92:b2:f9:59:19:40:53:31:f4:ca:8c:1d:aa: e5:1a:56:8b:dc:da:66:62:10:1c:57:35:8f:a7:fc:97:f4:21: d9:24:40:86:71:22:5a:df:e3:93:9f:18:ce:9b:0c:82:44:1a: 29:61:f7:2c:81:f1:37:4b:3c:da:98:44:61:de:53:44:62:35: 6e:04:46:8c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCqQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTY2RkMxMTAvBgNVBAUTKDY5NDA4RjZCMUNBMDI4MTY2ODNDQ0U0QzA4RTAwNDkz MjUxOTQ0QjIwHhcNMjUxMjA0MTg1NDExWhcNMjUxMjExMTg1NDExWjAYMRYwFAYD VQQDEw02OTMxZDhkMy03ZDgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5rx2koZ4BGw3TkShV2qkJD3Fc0d1sT5YDy6i4WA5IE+3rhfA10KiBmB7f61n 543DiDV0hAonn7NGDRsdNwnMn7Zutej6RKklmwV39l+xC+jXGMjfp1AhJOkJJfac fd0PmEUW2h8txccU7AWGKDHJNmMAcAVL+zX96YVQJVvgY5tzdQ6gFt9+jBeH/xIK 4pGj5ccTFFfO43QbGQOzKHrT+Fqi+G9/jxGn6d+Dd402E6DiTFBjOZIh7uB3v6yW jVP/YWbI8KtkqtuE5siCXEn7W1zpC9gWkQc184vuHrcJpiLD8yKW+91KDjlsv7Z8 fyQZJHex1HJgLTb5yvdHmGDZtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNi8FMsO 6X/KyJUAnjqYc6N0F6QsMB8GA1UdIwQYMBaAFGlAj2scoCgWaDzOTAjgBJMlGUSy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNjZGQy9BQjFGNEVDQTcy OUExMUVBQUJCRjkxNDFDNEY5QUUwMi9hVUNQYXh5Z0tCWm9QTTVNQ09BRWt5VVpS TEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FVQ1BheHlnS0Jab1BNNU1DT0FFa3lVWlJMSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NjZGQy9BQjFGNEVDQTcyOUExMUVBQUJCRjkxNDFDNEY5QUUwMi9hVUNQYXh5Z0tC Wm9QTTVNQ09BRWt5VVpSTEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCcNvzgA9c1xkmRxlg56E2Swa/EieOFmaIfIx1+NPldXFrciaBsjOb8 qLqW6JwJaHMfB04OS2BwV+YHO9R41qXvu0lwJcuDsBc2Y5D8KcLgBWGqD8+TiYGi HPzz7PcqToSZH0mv/bd1mKjf1rTi/YK/NkIYdkjh6/0N995kK/3cMTo0YPy7ifnA GykRHNm1qPvwbQEgyJi6t6FwklUmOOcxjpaSB4IJFS6sgJ1dqp1NPIc+vqSkSEaK 0JKy+VkZQFMx9MqMHarlGlaL3NpmYhAcVzWPp/yX9CHZJECGcSJa3+OTnxjOmwyC RBopYfcsgfE3SzzamERh3lNEYjVuBEaM -----END CERTIFICATE-----Generated at Sat Dec 6 15:08:17 2025 by rpki-client